Описание
URI is a module providing classes to handle Uniform Resource Identifiers. In versions prior to 0.12.5, 0.13.3, and 1.0.4, a bypass exists for the fix to CVE-2025-27221 that can expose user credentials. When using the + operator to combine URIs, sensitive information like passwords from the original URI can be leaked, violating RFC3986 and making applications vulnerable to credential exposure. Versions 0.12.5, 0.13.3, and 1.0.4 fix the issue.
A flaw was found in the URI module. A remote attacker could exploit this vulnerability by using the + operator to combine Uniform Resource Identifiers (URIs). This bypasses a previous fix and can lead to the leakage of sensitive information, such as user credentials (passwords), from the original URI, resulting in credential exposure.
Отчет
This vulnerability is rated Moderate as it allows for credential exposure when the URI module's + operator is used to combine URIs. This flaw bypasses a previous fix, potentially leading to sensitive information leakage from the original URI in affected applications across Red Hat Enterprise Linux, OpenShift Container Platform, and other products utilizing the vulnerable URI module.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Logging Subsystem for Red Hat OpenShift | openshift-logging/fluentd-rhel9 | Fix deferred | ||
| Red Hat Enterprise Linux 10 | rhel10/flatpak-sdk | Fix deferred | ||
| Red Hat Enterprise Linux 10 | rhel10/ruby-33 | Fix deferred | ||
| Red Hat Enterprise Linux 10 | ubi10/ruby-33 | Fix deferred | ||
| Red Hat Enterprise Linux 8 | rhel8/ruby-33 | Affected | ||
| Red Hat Enterprise Linux 8 | ubi8/ruby-33 | Fix deferred | ||
| Red Hat Enterprise Linux 9 | rhel9/flatpak-sdk | Fix deferred | ||
| Red Hat Enterprise Linux 9 | rhel9/ruby-30 | Fix deferred | ||
| Red Hat Enterprise Linux 9 | rhel9/ruby-33 | Fix deferred | ||
| Red Hat Enterprise Linux 9 | ubi9/ruby-30 | Fix deferred |
Показывать по
Ссылки на источники
Дополнительная информация
Статус:
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
URI is a module providing classes to handle Uniform Resource Identifiers. In versions prior to 0.12.5, 0.13.3, and 1.0.4, a bypass exists for the fix to CVE-2025-27221 that can expose user credentials. When using the `+` operator to combine URIs, sensitive information like passwords from the original URI can be leaked, violating RFC3986 and making applications vulnerable to credential exposure. Versions 0.12.5, 0.13.3, and 1.0.4 fix the issue.
URI is a module providing classes to handle Uniform Resource Identifiers. In versions prior to 0.12.5, 0.13.3, and 1.0.4, a bypass exists for the fix to CVE-2025-27221 that can expose user credentials. When using the `+` operator to combine URIs, sensitive information like passwords from the original URI can be leaked, violating RFC3986 and making applications vulnerable to credential exposure. Versions 0.12.5, 0.13.3, and 1.0.4 fix the issue.
URI is a module providing classes to handle Uniform Resource Identifie ...
EPSS
6.5 Medium
CVSS3